Bug #2481

"O" option no longer works with msfpayload

Added by Jeremy Faircloth over 1 year ago. Updated 4 months ago.

Status:Closed Start date:09/01/2010
Priority:High Due date:
Assignee:Joshua J. Drake % Done:

100%
Category:user interface
Target version:Metasploit 3.5.0
Resolution:fixed Release Note:

Description

When using the O option, msfpayload responds by generating the raw output of the payload. e.g. "./msfpayload /windows/shell_bind_tcp O" in prior versions would show which options are available for the payload. The same result (raw output)is obtained using the S option.

Associated revisions

Revision ac3b1ba6
Added by Joshua Drake over 1 year ago

fixes #2481, broken thanks to anonymous contributor wink

git-svn-id: file:///home/svn/framework3/trunk@10252 4d416f70-5f16-0410-b530-b9f4589650da

History

#1
Updated by Joshua J. Drake over 1 year ago

Do you know what version did this? I've never seen such behavior.

#2
Updated by Jeremy Faircloth over 1 year ago

I tested this with v3.4.2-dev after updating BackTrack4 and see this issue. On v3.3.4-dev included in non-updated BT4, it works normally.

#3
Updated by xanda inc over 1 year ago

source code of the latest msfpayload (MSF checked out revision 10251)

O and S is the same thing

<snip>
elsif (cmd =~ /^(s|o)/)
payload.datastore.import_options_from_s(ARGV.join('_|_'), '_|_')
puts Msf::Serializer::ReadableText.dump_module(payload)
</snip>

#4
Updated by Joshua J. Drake over 1 year ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

Applied in changeset r10252.

#5
Updated by Joshua J. Drake over 1 year ago

  • Assignee changed from James Lee to Joshua J. Drake
  • Target version set to Metasploit 3.5.0
  • Resolution set to fixed

#6
Updated by Lenny Miyasato over 1 year ago

Looks good now on update 10254...

msf exploit(ms08_067_netapi) > set payload windows/shell_bind_tcp
payload => windows/shell_bind_tcp
msf exploit(ms08_067_netapi) > show options

Module options:

Name     Current Setting  Required  Description
   ----     ---------------  --------  -----------
   RHOST                     yes       The target address
   RPORT    445              yes       Set the SMB service port
   SMBPIPE  BROWSER          yes       The pipe name to use (BROWSER, SRVSVC)

Payload options (windows/shell_bind_tcp):

Name      Current Setting  Required  Description
   ----      ---------------  --------  -----------
   EXITFUNC  thread           yes       Exit technique: seh, thread, process
   LPORT     4444             yes       The listen port
   RHOST                      no        The target address

Exploit target:

Id  Name
   --  ----
   0   Automatic Targeting

#7
Updated by Jeremy Faircloth over 1 year ago

Lenny, issue wasn't with "show options" in msfconsole, it was with the "O" or "S" options for msfpayload.

Joshua, confirmed that it's working now using update 10255. Thanks!

#8
Updated by Jonathan Cran over 1 year ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF